| 90 Internet Secuirty Issues Resources |
| 0day Treasure Hunt: Researcher Hides IE Attack on Web
|
| Security researcher Aviv Raff has published code that would allow someone to take control of a computer running Internet Explorer, but there's a catch. He's not saying exactly where he's hidden the attack.
|
| Open |
Open Tab |
May 7, 2008 |
Provides Information |
| 17 Arrested in Canadian Hacking Bust
|
| Quebec police break up a hacking ring that police say is responsible for an estimated $44.3 million) in damage to computer systems.
|
| Open |
Open Tab |
February 21, 2008 |
Provides Information |
| 72 Tips for Safer Computing
|
| The Very Minimum.
|
| Open |
Open Tab |
January 31, 2008 |
Provides Information |
| A |
| A Look At April's Mass SQL Injection Attack For ASP.Net / SQL Server SQL Server Environments
|
| What caught my attention was the fact that so far, attackers would go for specific sites. But this time around, they used a sophisticated tool that would scan the entire web for potentially weak sites running ASP.Net and therefore, quite possibly SQL Server and use a generic SQL Server feature on all those sites to wreck serious damage.
|
| Open |
Open Tab |
June 16, 2008 |
Provides Information |
| A New Way To Protect Computer Networks From Internet Worms
|
| Scientists may have found a new way to combat the most dangerous form of computer virus. The method automatically detects within minutes when an Internet worm has infected a computer network.
|
| Open |
Open Tab |
June 5, 2008 |
Provides Information |
| Adobe PDF exploit infects 'many thousands,' says researcher
|
| Attacks against just-patched PDF bugs may come from infected Web ads
|
| Open |
Open Tab |
February 11, 2008 |
Provides Information |
| Adware package tops malware charts for first time
|
| An adware program - not a virus - topped malware charts for the first time last month.
|
| Open |
Open Tab |
March 6, 2008 |
Provides Information |
| Americans Have False Sense of PC Security
|
| Computer users are in dire need of a "reality check" when it comes to home PC security, according to the National Cyber Security Alliance and security firm McAfee.
|
| Open |
Open Tab |
October 1, 2007 |
Provides Information |
| Arrest Made in Attack on Antiscam Site
|
| A California man faces ten years for allegedly launching an Internet attack against CastleCops, a Web site that roots out scams.
|
| Open |
Open Tab |
October 4, 2007 |
Provides Information |
| Automatic Encryption System Debuts
|
| The company's newly-launched fideAS file enterprise software can be used to encrypt data in files or folders on PCs, laptops, or even servers. Integrating with a Microsoft Active Directory for easy management, the innovation is that none of this involves the user of that device making any decision for or against using such a security system.
|
| Open |
Open Tab |
March 16, 2008 |
Provides Information |
| B |
| Botnet Attacks Military Systems
|
| Security researchers have discovered a complex spamming scheme that hijacks users' PCs in order to attempt to send junk mail via university and military systems.
|
| Open |
Open Tab |
May 2, 2008 |
Provides Information |
| C |
| Catapult Integrated Systems
|
| is a premier systems integrator and commercial managed Internet services provider serving northern California since 1992.
|
| Open |
Open Tab |
|
Provides a Service |
| Code Execution Flaw Haunts Mozilla Thunderbird
|
| The open-source mail client is updated to fix at least six security holes that could expose users to a wide range of malicious attacks.
|
| Open |
Open Tab |
February 27, 2008 |
Provides Information |
| Comcast offers 50 Mbps Internet, but it won't come cheap
|
| Comcast will begin offering a new "extreme high-speed" Internet connection in the Minnesota Twin Cities region today, with nationwide rollout expected by 2010. The new Internet service will cost $150 per month and will offer 50 Mbps download and 5 Mbps in upload speeds.
|
| Open |
Open Tab |
April 3, 2008 |
Provides Information |
| Computer virus turns 25
|
| Many unhappy returns.
|
| Open |
Open Tab |
July 13, 2007 |
Provides Information |
| D |
| Danger Lurks on Government Web Sites
|
| Security questions arise amid reports of hackers seeding malware and inappropriate links.
|
| Open |
Open Tab |
October 6, 2007 |
Provides Information |
| E |
| Eight-year-old Windows name resolution exploit re-emerges
|
| Microsoft acknowledged the discovery of an exploitable bug in the way one of its services handles domain name resolution -- a bug it thought it fixed in 1999.
|
| Open |
Open Tab |
December 4, 2007 |
Provides Information |
| Endpoint Security Gets a Failing Grade
|
| My Dear Old Mum phoned the other day to ask my advice on a computer problem. Ever since she got broadband, she said, whenever her PC started up it would nag her about installing some Windows security update or another. She'd press cancel but it would just nag her again later.
|
| Open |
Open Tab |
June 24, 2008 |
Provides Information |
| EU States Extend Life of Internet Security Body
|
| Telecom ministers agree to extend the life of the European Network and Information Security Agency by three years as threats to the Web increase.
|
| Open |
Open Tab |
June 12, 2008 |
Provides Information |
| F |
| Feds Racing to Lock Down Windows XP, Vista PCs
|
| Federal agencies required to ensure security of their Windows XP and Vista PCs by the end of February are about to get a much anticipated list of validated assessment tools.
|
| Open |
Open Tab |
February 1, 2008 |
Provides Information |
| Finjan Finds Database of 8,700 Stolen FTP Credentials
|
| Researchers at the security vendor uncovered a cache of stolen credentials for top domains across the globe that can be used to compromise Web sites and infect visitors.
|
| Open |
Open Tab |
February 27, 2008 |
Provides Information |
| Five Ways Your Best Employees Can Compromise Your Network ... And Not Even Know It
|
| Without the right management policies and training, any company, large or small, can find itself in a security mess. Dirk Morris, CTO of Untangle, tells you what can happen and how to avoid the problems that would otherwise result.
|
| Open |
Open Tab |
June 25, 2008 |
Provides Information |
| Follow this six-step malware response plan
|
| Sometimes all the preventive care in the world won't protect your systems from the inevitable malware infection. What's the best way to handle it? According to Mike Mullins, an effective malware response plan includes these six steps.
|
| Open |
Open Tab |
|
Provides Information |
| G |
| Google researcher calls for Flash flush
|
| A Google researcher is advising that security professionals rewrite code associated with Adobe Flash content two weeks after warning that buggy files can be exploited by attackers to gain complete control over transactions on websites belonging to banks, government agencies and other trusted organizations.
|
| Open |
Open Tab |
January 2, 2008 |
Provides Information |
| H |
| Hack Attack Hits 10,000 Web Sites
|
| Infected sites feed exploits to visitors--and more sites are affected than first suspected.
|
| Open |
Open Tab |
January 18, 2008 |
Provides Information |
| Hacker Bags Windows Server 2008 Trophy
|
| My eWEEK colleague Ryan Naraine reports "serious design weaknesses" affecting Internet Information Services 7, Windows Server 2008, Windows XP and Windows Vista. IIS 7 is bundled with Windows Server 2008.
|
| Open |
Open Tab |
March 27, 2008 |
Provides Information |
| Hackers Attack Trend Micro
|
| The security vendor was one of the victims of a widespread Web attack this week.
|
| Open |
Open Tab |
March 14, 2008 |
Provides Information |
| Hackers Can Expose Masked Surfers, Study Says
|
| A researcher says the techniques to stay anonymous online can be thwarted through flaws in the systems.
|
| Open |
Open Tab |
February 1, 2008 |
Provides Information |
| Hackers Evaluate Estonia Attacks
|
| Black Hat attendees say the barrage of distributed attacks offers tips on how to handle cybersecurity.
|
| Open |
Open Tab |
August 4, 2007 |
Provides Information |
| Hacker Marketplace to Help Build 0day Appliance
|
| WabiSabiLabi, the company best known for building an online marketplace for security flaws, is getting into the hardware business.
|
| Open |
Open Tab |
May 6, 2008 |
Provides Information |
| Heathrow PC security probe launched
|
| Public access internet security terminals at Heathrow airport may be vulnerable to hacking attacks. An Italian hacker stumbled on flaws that create a possible means for miscreants to load key logging software or other malware on a PC that allowed members of the public to access the internet.
|
| Open |
Open Tab |
January 22, 2008 |
Provides Information |
| How do I… Configure firewall security on a SonicWALL device?
|
| SonicWALL firewalls are a staple of network security in the small and medium business market. SonicWALL's proprietary SonicOS operating system powers its firewall devices, which means the mechanisms and procedures required to configure their security settings is similar for all of them.
|
| Open |
Open Tab |
|
Provides Information |
| HP Helps Businesses Defend Against Malicious Web Attacks with New Application Security Offerings
|
| HP today announced major updates to its application security software as well as a new software-as-a-service offering to help businesses minimize the risk of security breaches due to hacker attacks and safeguard against theft of sensitive customer information.
|
| Open |
Open Tab |
May 27, 2008 |
Provides Information |
| Huge Web Hack Attack Infects 500,000 Pages
|
| Attacks on legitimate Web domains, including some belonging to the United Nations that began earlier this week, have expanded dramatically, security researchers said Friday, with hundreds of thousands of pages hacked by Friday.
|
| Open |
Open Tab |
April 25, 2008 |
Provides Information |
| I |
| IBM launches $1.5bn IT security push
|
| The initiative is centered around two particular areas - compliance and content control - and weaves together technologies from recent IBM acquisitions Internet Security Systems (ISS) and Watchfire with technologies developed inhouse, many related to its Tivoli systems management arm.
|
| Open |
Open Tab |
November 1, 2007 |
Provides Information |
| IE 7 Bug Reopens Debate Over Patch Responsibilities
|
| Security researchers are again arguing over who is responsible -- Microsoft Corp. or third-party developers -- for protocol-handling bugs.
|
| Open |
Open Tab |
October 9, 2007 |
Provides Information |
| IM Attacks Get Nastier
|
| Attacks on instant messaging systems are getting better at targeting users, study finds.
|
| Open |
Open Tab |
January 31, 2008 |
Provides Information |
| Infamous malware group calls it quits
|
| The shutters are being pulled down on old school virus writers' group 29A.
|
| Open |
Open Tab |
March 7, 2008 |
Provides Information |
| Interview with MediaDefender Defenders.com
|
| Unless you've been residing under a rock of monumental proportions, it should come as little surprise that MediaDefender's very confidential and private internal emails were intentionally leaked online.
|
| Open |
Open Tab |
September 20, 2007 |
Provides Information |
| M |
| Malware Exploded in 2007, Security Vendor Says
|
| F-Secure has collected twice as many samples of malicious code this year as in the 20 prior years.
|
| Open |
Open Tab |
December 4, 2007 |
Provides Information |
| Mass SQL Injection Attack Targets Chinese Web Sites
|
| Web sites across China and Taiwan are being hit by a mass SQL injection attack that has implanted malware in thousands of Web sites, according to a security company in Taiwan.
|
| Open |
Open Tab |
May 19, 2008 |
Provides Information |
| Massive Attack: Half A Million Microsoft-Powered Sites Hit With SQL Injection
|
| A new SQL injection attack aimed at Microsoft IIS web servers has hit some 500,000 websites, including the United Nations, UK Government sites and the U.S. Department of Homeland Security. While the attack is not necessarily Microsoft's fault, it is unique to the company's IIS server.
|
| Open |
Open Tab |
April 28, 2008 |
Provides Information |
| McAfee Aims to Ease Security Management
|
| Security provider McAfee pulled the covers off the latest version of ePolicy Orchestrator on Sept. 17, touting its interoperability and several new features allowing users to manage security products for the endpoint and network.
|
| Open |
Open Tab |
September 17, 2007 |
Provides Information |
| McAfee Names '.hk' World's Most Dangerous Domain
|
| Hong Kong's ".hk" is now the world's most dangerous domain for surfing and searching, according to a report released Wednesday by security company McAfee, but the survey's methodology may mean it is not as risky as its seems.
|
| Open |
Open Tab |
June 4, 2008 |
Provides Information |
| MediaDefender's Source Code Released
|
| It hasn't been a good day, or week for that matter, for MediaDefender. Their internal emails have been leaked for the world to see, a phone conversation with a law enforcement official divulged, strategy data used against Gnutella published; and just when things couldn't possible get any worse, they just did.
|
| Open |
Open Tab |
September 20, 2007 |
Provides Information |
| Memory trick breaks PC encryption
|
| Encrypted information held on a laptop is more vulnerable than previously thought, US research has shown.
|
| Open |
Open Tab |
March 5, 2008 |
Provides Information |
| Microsoft Botnet-hunting Tool Helps Bust Hackers
|
| The software vendor is giving law enforcers access to a special tool that keeps tabs on botnets, using data compiled from the 450 million computer users who have installed the Malicious Software Removal tool that ships with Windows.
|
| Open |
Open Tab |
April 29, 2008 |
Provides Information |
| Microsoft Calls for Initiative on Web Security
|
| The vendor-neutral proposal is based on the software maker's Trustworthy Computing push.
|
| Open |
Open Tab |
April 8, 2008 |
Provides Information |
| Microsoft denies a link between IIS and SQL injection attacks
|
| An apparent rash of SQL injection attacks on Web sites was reported by a Finnish security firm late last week, though a case of "guilt by implication" led to speculation that a privilege escalation vulnerability was the cause.
|
| Open |
Open Tab |
April 28, 2008 |
Provides Information |
| Microsoft Denies Credit to Bug-Hunter with Racy Name
|
| A hacker posted exploit code for a Microsoft bug after being denied credit for the find because of his offensive pseudonym.
|
| Open |
Open Tab |
February 17, 2008 |
Provides Information |
| Microsoft on the hunt for 'serious' Windows flaw
|
| Microsoft bug squashers are investigating reports of a serious security vulnerability in Windows operating systems that could allow attackers to take control of vast numbers of machines, particularly those located off US shores.
|
| Open |
Open Tab |
November 26, 2007 |
Provides Information |
| Microsoft Says Vista More Secure Than XP, OSX and Linux
|
| Uh oh. You've done it this time, Jeff Jones. As the security strategy director in Microsoft's Trustworthy Computing group, you've just made the bold claim that Vista, from a first year on the market comparison, has been more secure than Windows XP, Red Hat rhel4ws, Ubuntu 6.06 LTS, and Apple Mac OS X 10.4.
|
| Open |
Open Tab |
January 24, 2008 |
Provides Information |
| Microsoft Scrambles to Quash 'Friendly' Worm Story
|
| Researchers' suggestions of using wormlike software to distribute patches draws security concerns.
|
| Open |
Open Tab |
February 20, 2008 |
Provides Information |
| Microsoft Security Fix Clobbers 2 Million Password Stealers
|
| Microsoft's June security updates were bad news for online criminals who make their living stealing password information from online gamers.
|
| Open |
Open Tab |
June 20, 2008 |
Provides Information |
| Microsoft Vista's IPv6 Raises New Security Concerns
|
| Members of the Internet engineering community have raised several new security concerns about Teredo, a mechanism for sending IPv6 traffic over IPv4 networks that comes turned on by default in Microsoft's Vista software.
|
| Open |
Open Tab |
December 7, 2007 |
Provides Information |
| MS08-021: A Must-Patch Vulnerability
|
| Virus hunters are tracking a booby-trapped file named TOP.JPG in circulation and exploiting one of the vulnerabilities described in Microsoft's MS08-001 bulletin.
|
| Open |
Open Tab |
April 15, 2008 |
Provides Information |
| N |
| NAC Can't Weather the Storm
|
| NAC vendors say they can't stop Storm-infected clients, but behavior-based detection can. Fat chance, an expert says, given antiquated detection methods.
|
| Open |
Open Tab |
October 26, 2007 |
Provides Information |
| Net criminals shun virus attacks
|
| Hi-tech criminals have found novel ways to carry out web-based attacks that are much harder to spot and stop, warn security experts.
|
| Open |
Open Tab |
July 20, 2007 |
Provides Information |
| New report identifies dangerous Web domains
|
| When surfing the Internet for safe Web sites, not all domains are equal.
|
| Open |
Open Tab |
June 4, 2008 |
Provides Information |
| New Technologies Help Improve SOA Security
|
| SOA security gets a boost from patterns and creative use of security specifications.
|
| Open |
Open Tab |
May 14, 2008 |
Provides Information |
| O |
| Old Windows exploits dominate hack attack traffic
|
| China and US are the leading sources of hacking attacks, which are overwhelmingly targeted against Windows systems.
|
| Open |
Open Tab |
May 30, 2008 |
Provides Information |
| Online Thugs Assault Sites That Specialize in Security Help
|
| CastleCops.com and similar good-guy sites are hard hit by distributed denial-of-service attacks.
|
| Open |
Open Tab |
September 11, 2007 |
Provides Information |
| P |
| Packet Analytics
|
| Net/FSE, Packet Analytics' network data search engine, puts the power of real time searches over terabytes of NetFlow data in the hands of security analysts. Employing sophisticated algorithms, Net/FSE reduces exposure to significant business risk by enabling security specialists to quickly and determine the extent of a network alert.
|
| Open |
Open Tab |
|
Provides a Service |
| Patches Can Cause New Leaks
|
| Matasano researchers have found security problems with data-leak prevention products.
|
| Open |
Open Tab |
August 5, 2007 |
Provides Information |
| R |
| Report: Net Crime Losses Total $240 Million in 2007, an All Time High
|
| Craigslist and Ebay are becoming the new back alleys and shady neighborhoods as Internet fraud has reached an all-time high at $240 million lost in 2007, according to The Internet Crime Complaint Center (IC3) in report conducted in partnership the Federal Bureau of Investigation and the National White Collar Crime Center.
|
| Open |
Open Tab |
April 4, 2008 |
Provides Information |
| RIAA Web site apparently hacked over the weekend
|
| An old-style SQL injection hack is the suspected culprit in a malicious attack on the RIAA's Web site. During the weekend, its framework was still going, though its content had been erased.
|
| Open |
Open Tab |
January 21, 2008 |
Provides Information |
| S |
| Securing Windows XP on K-12 computer networks
|
| Securing Windows XP can be a challenging and complex process, one that doesn't end after the initial setup of a networked workstation.
|
| Open |
Open Tab |
|
Provides Information |
| Shrinking patch windows hit by automated attacks
|
| The length of time between the development of security patches and the development of exploits targeting the security holes they address has been dropping for some time.
|
| Open |
Open Tab |
April 21, 2008 |
Provides Information |
| Social networking applications pose risks
|
| Sarah Brown is unusually cautious when it comes to social networking.
|
| Open |
Open Tab |
April 28, 2008 |
Provides Information |
| Spam Traveling with .SCR File Attachments, Trojans in Tow
|
| Websense and MessageLabs uncover separate spam campaigns that are using .scr file attachments in targeted attacks.
|
| Open |
Open Tab |
November 20, 2007 |
Provides Information |
| Symantec accidentally warns of internet meltdown
|
| An erroneous alert from Symantec's DeepSight falsely warned that a devastating attack was underway. The message, which went out at 8:40pm Eastern time, contained a subject line that stated: "DeepSight Increased ThreatCon from 1 to 4 Alert."
|
| Open |
Open Tab |
September 25, 2007 |
Provides Information |
| Symantec Aims to Automate Electronic Evidence Collection
|
| Two e-discovery connectors have been released to partners to provide tight integration with third-party case management, review, analytics, forensics and desktop collection tools.
|
| Open |
Open Tab |
August 7, 2007 |
Provides Information |
| Symantec Managed Service Swats Bots
|
| Symantec's service is leveraging data from its Global Intelligence Network to offer protection against botnets.
|
| Open |
Open Tab |
October 3, 2007 |
Provides Information |
| Symantec Still Mum on Vontu
|
| CEO John Thompson is not confirming or denying rumors his company wanted to buy data leak prevention specialist Vontu.
|
| Open |
Open Tab |
October 25, 2007 |
Provides Information |
| Symantec: Adobe Patch Not a Problem After All
|
| Researchers at Symantec updated their analysis of an Adobe-issued patch for Flash Player.
|
| Open |
Open Tab |
May 29, 2008 |
Provides Information |
| Symantec: Gov't Needs New Cybersecurity Steps
|
| Government agencies need to better protect themselves against cybersecurity problems after congressional hearings and reports exposed weaknesses in 2007.
|
| Open |
Open Tab |
January 7, 2008 |
Provides Information |
| T |
| The Growing E-Mail Security Challenge
|
| Virus-laden spam, targeted attacks and user ignorance make IT pros' jobs harder; here's how to cope.
|
| Open |
Open Tab |
April 18, 2008 |
Provides Information |
| Three Minutes with the Vista Laptop Hacker
|
| From PWN 2 PAWN: Why Shane Maccaulay turned to eBay with the prize laptop, and what's next for the attack code.
|
| Open |
Open Tab |
April 2, 2008 |
Provides Information |
| Trend Micro Keeps Head in-the-Cloud With New Security Plans
|
| Trend Micro pulled the covers off a host of products at a press event Wednesday - but will its SaaS strategy pay off?
|
| Open |
Open Tab |
June 18, 2008 |
Provides Information |
| Trojan Adware Hiding in MP3s, McAfee Says
|
| Adware pushers have found a new way to trick you into downloading their annoying products: fake MP3 files.
|
| Open |
Open Tab |
May 6, 2008 |
Provides Information |
| U |
| U.S. won't confirm report of Chinese hacking
|
| Government officials are not confirming a report that Chinese officials may have secretly copied the contents of a government laptop computer during a December visit to China by Commerce Secretary Carlos Gutierrez.
|
| Open |
Open Tab |
May 30, 2008 |
Provides Information |
| US court says just viewing child porn is not a crime
|
| Cached images not evidence.
|
| Open |
Open Tab |
July 2, 2007 |
Provides Information |
| V |
| Vista, Leopard, Linux to compete in hack contest
|
| Apple's OS X, Microsoft Windows, and Linux operating systems are to be pitted against each other in an ethical hacking contest in Vancouver next month.
|
| Open |
Open Tab |
February 7, 2008 |
Provides Information |
| W |
| Web Users in Malware Crosshairs
|
| Online malware attacks are becoming more pervasive, targeted, and refined as the underground threat economy continues to evolve and take on the characteristics of an organized industry.
|
| Open |
Open Tab |
April 9, 2008 |
Provides Information |
| Wireless Switch Enhances Security
|
| Aruba improves its Network Access Control to better check out a network before connecting.
|
| Open |
Open Tab |
August 15, 2007 |
Provides Information |
| Windows OneCare Live
|
| Security at Home, Protect your PC.
|
| Open |
Open Tab |
|
Provides a Service |
| Y |
| Yahoo Adopts McAfee Tool to Secure Searches
|
| McAfee and Yahoo Wednesday announced a partnership on Web security in which Yahoo's search engine is making freely available to users the warnings about unwanted or malicious code on Web sites as determined through McAfee's security technology.
|
| Open |
Open Tab |
May 8, 2008 |
Provides Information |
| Your Data Breach Was Probably Avoidable
|
| Although it has been a widely held belief among companies that insiders are responsible for most data breaches, a new study released June 11 claims 73 percent of breaches result from external sources versus 18 percent from insider threats.
|
| Open |
Open Tab |
June 11, 2008 |
Provides Information |
| Z |
| Zero-day attacks top list of IT concerns
|
| Zero-day attack concern may be out of lack of understanding on available protection.
|
| Open |
Open Tab |
July 31, 2007 |
Provides Information |